No more ads and enhanced security with pfBlockerNG for pfSense

No more ads and enhanced security with pfBlockerNG for pfSense


pfBlockerNG provides in addition to your existing FW rules an inbound and outbound filtering against:

  • commercial ads
  • malicious sites
  • cryptominers
  • trackers
  • botnet viruses

And is very easy to maintain and set up.

Installation steps

Install the package

  1. Go to System -> Package Manager -> Available Packages -> Search for pfBlockerNG-devel
  2. Once installed go to Firewall -> pfBlockerNG
  3. You can go with the automatic installation or skip it and set it up manually

Manual approach

  1. On the pfBlockerNG -> General page -> enable “pfBlockerNG” and enable “Keep settings”
  2. IP tab:
    1. Enable de-duplication, CIDR aggregation and set ASN caching to 24 hours.
    2. Under IP Interface/Rules configuration set the “Inbound Firewall Rules” to WAN with blocking action and “Outbound Firewall Rules” to your desired interfaces to be “protected” by pfBlockerNG with rejecting action.

    3. Sub-tab IPv4 will allow you to configure IPv4 block lists
    4. Blocklist examples

  3. DNSBL tab:
    1. Enable DNSBL
    2. Set mode to unbound
    3. Enable Wildcard Blocking (TLD)
    4. Enable Resolver Live Sync

    5. Under DNSBL configuration you can set the to-be-used interfaces to connect the DNSBL Webserver through “Permit Firewall Rules” (e.g. LAN and guest network).
    6. Sub-tab DNSBL Groups will allow you to configure DNS blocking groups and works both for IPv4 and IPv6
  4. Update: do a “Reload” and run to download and update the configured blocking lists
  5. Firewall: The following rules will be created once the update & reload has been done


No comments yet. Why don’t you start the discussion?

Leave a Reply

Your email address will not be published. Required fields are marked *